View Client with Local Mode offers mobile users the ability to check out View desktops onto their local computer.

View Client with Local Mode supports both tunneled and nontunneled communications for LAN-based data transfers. With tunneled communications, all traffic is routed through the View Connection Server host, and you can specify whether to encrypt communications and data transfers. With nontunneled communications, unencrypted data is transferred directly between the local desktop on the client system and the View desktop virtual machine in vCenter Server.

Local data is always encrypted on the user's computer, regardless of whether you configure tunneled or nontunneled communications.

The data disk stored locally on client systems is encrypted using a default encryption strength of AES-128. The encryption keys are stored encrypted on the client system with a key derived from a hash of the user's credentials (username and password or smart card and PIN). On the server side, the key is stored in View LDAP. Whatever security measures you use to protect View LDAP on the server also protect the local mode encryption keys stored in LDAP.

Note

You can change the encryption key cipher from AES-128 to AES-192 or AES-256.

The desktop has a lifetime controlled through policy. If the client loses contact with View Connection Server, the maximum time without server contact is the period in which the user can continue to use the desktop before the user is refused access. On the client side, this expiration policy is stored in a file that is encrypted by a key that is built into the application. This built-in key prevents users who have access to the password from circumventing the expiration policy.